The program allows you to download a World Wide Web site from the Internet to a local directory, building recursively all directories, getting HTML, images, and other files from the server to your computer. HTTrack arranges the original site’s relative link-structure. Simply open a page of the “mirrored” website in your browser, and you can browse the site from link to link, as if you were viewing it online. Hatrack can also update an existing mirrored site, and resume interrupted downloads. HTTrack is fully configurable, and has an integrated help system.

How too

Simply type the command ‘httrack’ and enter in the test website.

For test purposes altoromutual is used.

Action 1 is is for a full mirror.

HTTrack also has the ability to run through a proxy.

Enter your proxy’s address and enter the proxy’s port. May need to enter a username and password for the proxy. This can be done by using the additional options.

-P user:pass@proxy:port

Once the process is complete you it will say ‘Thanks you for using HTTack’.

HTTack was ran in root the mirrored output will be stored in root and can be used in the browser from here.

Skipfishis an active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) security checks. The final report generated by the tool is meant to serve as a foundation for professional web application security assessments.

How too

With the below command SkipFish;

-S is used to load that dictionary,

-W to specify an initially empty file for any newly learned site-specific keywords

and -o reduces the risk of persistent effects of a scan is , which inhibits all form parsing and submission steps